Kristiyan Velkov
Docker captain
Sofia, Bulgaria
Actions
Kristiyan Velkov is a Principal Front-end Developer, Docker Captain, and author of four technical books, including Mastering React.js Interviews and Mastering TypeScript Core Utility Types. With over ten years of experience, he specializes in React.js, Next.js, DevOps for front-end engineers, and building secure, high-performance web applications. Kristiyan has contributed to the official Docker documentation and regularly shares practical insights on Medium and Substack, where thousands of developers follow his work. He speaks at community events and workshops, focusing on modern JavaScript, DevOps practices, and real-world front-end engineering challenges.
Links
Area of Expertise
Topics
Why DevOps is also a Front-end responsibility
Front-end developers no longer just build interfaces. We deploy, monitor, secure, and optimize user experiences end-to-end. Modern frameworks, edge platforms, serverless runtimes, CI/CD, Docker, and cloud tooling have expanded the role far beyond the browser.
This session shows why DevOps thinking is essential for every front-end engineer who wants to stay relevant, avoid slow pipelines, and ship reliable code. You’ll see real examples from React, Next.js, Docker, and modern CI/CD workflows — all focused on helping front-end developers deliver faster, safer, and more predictable releases.
The dark side of AI: Security risks developers ignore until It’s too late
AI is moving fast—faster than most engineering teams can keep up with. While everyone talks about productivity boosts and clever prompts, very few talk about the dangerous security gaps quietly introduced into modern applications. This session uncovers the hidden risks developers overlook when integrating AI tools, LLMs, and AI-driven automation into their workflows.
We’ll cut through the hype and focus on real, practical vulnerabilities: prompt injection, model hijacking, insecure API usage, supply-chain risks in AI tooling, leaking secrets through logs, hallucinated dependencies, and dangerous assumptions developers make when trusting AI outputs. You’ll see concrete examples, demos, and step-by-step mitigation strategies you can apply the same day.
If your team uses AI—or plans to—you can’t afford to ignore this session.
The dark side of AI: Security risks developers ignore until It’s too late
AI tools make development faster — but they also introduce security risks most developers never notice until it’s too late. This talk reveals the hidden dangers behind AI-generated code, insecure prompts, data leakage, model manipulation, and risky integrations. Through real examples and practical guidance, developers will learn how to safely use AI without exposing secrets, breaking security rules, or shipping vulnerable code. If your team relies on AI, this session shows you the blind spots you must fix before they become real incidents.
Docker Security for Developers
Docker is now part of everyday development, yet security is often treated as an afterthought. This session focuses on the real security risks developers introduce—often unknowingly—when building and running containers.
The talk covers common Docker mistakes seen in production, such as insecure base images, running containers as root, leaking secrets, and bloated images that expand the attack surface. It explains why these issues matter and how attackers actually exploit them.
Most importantly, the session shows practical, developer-friendly techniques to build secure Docker images without slowing down development. The goal is simple: help developers write Dockerfiles that are production-ready, secure by default, and aligned with modern DevOps and security expectations.
The dark side of AI: Security risks developers ignore until It’s too late
AI is everywhere, and most teams are building with it faster than they can secure it. This talk exposes the real security risks hidden behind modern AI features — from prompt injection and data leakage to model manipulation and insecure integrations. You’ll learn the mistakes developers and companies keep repeating, why they happen, and how to protect your applications before attackers exploit them. If you’re shipping AI into production, this is the crash talk you can’t afford to skip.
Docker Security for Developers
Docker is now part of everyday development, yet security is often treated as an afterthought. This session focuses on the real security risks developers introduce—often unknowingly—when building and running containers.
The talk covers common Docker mistakes seen in production, such as insecure base images, running containers as root, leaking secrets, and bloated images that expand the attack surface. It explains why these issues matter and how attackers actually exploit them.
Most importantly, the session shows practical, developer-friendly techniques to build secure Docker images without slowing down development. The goal is simple: help developers write Dockerfiles that are production-ready, secure by default, and aligned with modern DevOps and security expectations.
DevOps for React Developers: From Code to Production
This hands-on workshop pushes developers beyond the surface of modern JavaScript. We focus on real-world problems, clean architecture, performance, security, and patterns developers rely on daily—but rarely master. Over several hours of practical exercises, participants build, break, and fix JavaScript code the way it happens in real projects.
We tackle advanced functions, closures, async flow, module architecture, clean patterns, debugging strategies, and performance traps. Every concept is paired with live examples and guided exercises that turn knowledge into skill. This workshop is designed for developers who want to level up—not by memorizing features, but by understanding how to use JavaScript with clarity, confidence, and precision.
DevOps for React Developers: From Code to Production
This workshop bridges the long-standing gap between React developers and production-ready delivery. Many front-end developers know how to build great interfaces but they stumble when it comes to building, testing, deploying, and monitoring those apps in real-world environments.
This workshop gives React developers the DevOps superpowers they need.
You’ll learn how to:
- Dockerize your React application for development and production following best practices from Docker Captain Leader author of the official Docker documentation for Node.js, React.js, Angular, Vue.js and many more.
- Build scalable CI/CD pipelines using GitHub Actions
- Optimize your apps for performance and reliability
This is not theory. It’s not a shallow overview. This is a production-focused, real-world workshop by a front-end developer who lives and breathes this every day.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top